CVE-2015-6314

CRITICAL

Cisco Wireless Lan Controller Software - Authentication Bypass

Title source: rule

Description

Cisco Wireless LAN Controller (WLC) devices with software 7.6.x, 8.0 before 8.0.121.0, and 8.1 before 8.1.131.0 allow remote attackers to change configuration settings via unspecified vectors, aka Bug ID CSCuw06153.

References (2)

[Vendor Advisory] http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160113-wlc

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1034665

Scores

CVSS v3 9.8

EPSS 0.0107

EPSS Percentile 77.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-287

Status draft

Affected Products (6)

cisco/wireless_lan_controller_software

Timeline

Published Jan 15, 2016

Tracked Since Feb 18, 2026